Always-returning Virus- help!

Recently my web site http://twilightsweden.se has been attacked by several viruses. A “mean code” hacks itself into the web site and stays attached to all the index-files.
(I have had virus attacks before, but have managed to get them away, which this won’t)

I have deleted the code, for it hours later to come back. I have changed password for my “login-panel” on my web host. But it doesn’t help. The virus always returns!

Seriously, I need your help! I’ve been in contact with my web host and its supporters but I always get put in a misery position. They always tell me to look up information on my own and contact the “support-team” for the script.

Just minutes ago I was in contact with them again. And they wrote:

“It is possible that your wordpress scripts is injected with the virus because of security holes there. It is called Remote SQL Injection.”

Is there a plugin that could be installed against this horrible stuff?

pjrich: We try to monitor spam in the forum and remove it, but we don’t see everything. If you see spam or anything else a mod should look at, tag the thread with “modlook” and one will notice it quickly.

As others have said, make sure you’re getting your FTP password changed. A site I worked on was hacked with almost the exact same code recently and they were getting in via the FTP account. Also make sure you have no key loggers / viruses, etc on your computer (or the computer of anyone with access to your account).

I wrote a plugin to help monitor for things like this in the future if you’d like to take a look at it: